Weekly review of the National Cyber Security Centre Finland (NCSC-FI) – 49/2024

Cable break at the start of the week receives widespread media attention

On the night between Monday and Tuesday, a fault was detected in GlobalConnect’s data cable in Finland. The issue was caused by two different events that damaged the cable as a result of nearby excavation works. The incident impacted around one hundred business customers, and some consumer connections were also affected. The cable’s repairs were completed on Tuesday, and the police have not opened an investigation into the matter.

The incident also attracted widespread media interest, and on Tuesday, the NCSC-FI received dozens of media enquiries from both Finnish and international media outlets. This is understandable, as telecommunications connections and their functionality are topical issues in today's climate. This is also why it is important that any such events are communicated quickly and accurately.

Hundreds of cable breaks occur annually in Finland, and the majority take place in connection with excavation works. Finland is prepared for these types of disruptions, with its connections being secured by backup connections. Traficom cooperates closely with different sectors of Finnish society, and the internet is not dependent on a single cable or even its backup connection.

The safe use of QR codes requires vigilance at both ends

Most people know what QR codes are and how these black-and-white pixel squares be scanned to access websites and other services. The next part details what you should keep in mind as you read and create QR codes.

What is a QR code and how can I scan it?

QR codes are an easy way to present data in a concise and machine-readable format. Each QR code is unique, depending on the data it contains (text, links, etc). QR codes are most commonly used for internet addresses, or URLs, but they can also contain other data, such as text or a person’s contact information.

Scanning a QR code requires a tool, for example an application downloaded from an app store. Today, most smartphone cameras are also able to read QR codes, eliminating the need for any separate scanners. If you decide to download a separate scanning application, remember to be careful – an unreliable application may intentionally misread the code and direct you to the wrong page, or do other unwanted things.

What should you keep in mind when scanning QR codes?

Treat QR codes like unknown internet addresses, i.e. with extra caution. Don’t scan every code you see, and pay attention to the place or situation where you saw the code. Be especially careful with unsolicited codes (e.g. email attachments, instant messages), and remember that you can receive suspicious codes from trusted parties.

After opening a page, check its address to make sure that it is correct – for example, that it looks familiar and contains no spelling errors or other oddities. Checking the address is the only way to really verify that a link is authentic.

Remember to also make sure that the code has not been tampered with, for example with a sticker that covers the original code.

Towards a cyber-secure 2025 – what kinds of changes will impact the sector?

Finland’s cyber security strategy has been renewed to meet the challenges of today’s operating environment. The EU’s ever-evolving regulation affects cyber security in many ways. As we move into 2025, it is clear that the Finnish cyber security sector is experiencing great changes. We invite you to the webinar organised by Traficom’s NCSC-FI, the National Emergency Supply Agency, and the Finnish Information Security Cluster (FISC) on Tuesday, 10 December, 9:00–11:30. Together, we can be more prepared for future changes!

The new Cyber Resilience Act is coming – now is the time to prepare!

The Cyber Resilience Act (CRA) will set new requirements for the security of digital products and the management of their lifecycles. We invite you to our webinar, where we will discuss the new Act, especially from the perspective of companies that are critical to Finland’s security of supply.

The webinar will be held on Thursday, 12 December 2024, 8:30–9:00. You can follow it during your morning coffee or commute to learn where Finland is headed next!

Hyöky users trust the service

Hyöky, i.e. national attack surface mapping for improving cyber security, is a service that allows organisations to receive detailed information about any attack surfaces that are visible online. Traficom’s NCSC-FI conducted a customer satisfaction survey for Hyöky service users in November 2024.

The key factor cited by most survey respondents was that the Hyöky service is provided by the NCSC-FI. Their open feedback also repeatedly emphasised how easy the service was to use and the clarity of its reports. Respondents also highlighted the fact that the service is accessible to smaller municipalities and cities.

The most important benefit of Hyöky’s reports was that they provide an outsider’s perspective on the visibility of the organisation’s services and, in particular, any possible problems in these. In addition to giving an overall picture of an organisation’s attack surface, survey respondents emphasised the importance of how the report provides information on open ports and IP addresses, vulnerabilities and risks, as well as detailed explanations of the observations made in the report.

The open feedback also highlighted concerns about smaller organisations and the importance of participating in the production of a shared situational picture. Every comment also emphasised the reliability of the NCSC-FI’s activities.

Recently reported scams

In this summary, we provide information about scams reported to the NCSC-FI during the past week.